Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology
Answers

hide sensitive xml values in logs

hi,

I am trying to mask in the ASM logs some values that are posted via xml structure (see the POST below). Do you have a step by step guidance that could help masking such data ? thanks.

POST /myuri/xml HTTP/1.1
Host: mywebsite.com
User-Agent: myuseragent
Accept: */*
Cookie: JSESSIONID=mycookie
Content-Length: 600
Content-Type: application/x-www-form-urlencoded

<?xml version="1.0" encoding="UTF-8"?>
<mytag version="x.x">
<do-submit-authentication>
<screen>
<name>securid-passcode</name>
<params>
<param>
<name>username</name>
<values>
<value>tesuser</value>
</values>
</param>
<param>
<name>passcode</name>
<values>
<value>1234123456</value>
</values>
</param>
</params>
</screen>
</do-submit-authentication>
</mytag>
0
Rate this Question
Comments on this Question
Comment made 1 week ago by Torti 806

use sensitive parameter setup with a xml profile.
Your problem here: Your xml has a bad design
one way: setup a namespace for your sensitive 'value' elements and add it as sensitive elements including the namespace in your xml profile. Without namespaces, all 'value' elements are invisible.
another way (better): rename your sensitive elements. password value element --> password
And then add it to sensitive elements in your xml profile.
Choose your URL /myuri/xml, select advanced view, go to header based content tab and connect it by request body handling as default action. Thats it.

1
Comment made 1 week ago by OM 418

thanks, I'll try the first option as the second one is not possible to achieve (xml structure is embedded in vmware client application).

om

0

Answers to this Question

placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER
Comments on this Answer
Comment made 1 week ago by OM 418

that did the trick. thanks.

omar

0